Menace actors are leveraging an e-crime instrument referred to as Atlantis AIO Multi-Checker to automate credential stuffing assaults, based on findings from Irregular Safety.
Atlantis AIO “has emerged as a strong weapon within the cybercriminal arsenal, enabling attackers to check tens of millions of stolen credentials in speedy succession,” the cybersecurity firm stated in an evaluation.
Credential stuffing is a sort of cyber assault by which an adversary collects stolen account credentials, usually consisting of lists of usernames or e mail addresses and passwords, after which makes use of them to realize unauthorized entry to person accounts on unrelated programs by way of large-scale automated login requests.
Such credentials might be obtained from a knowledge breach of a social media service or be acquired from underground boards the place they’re marketed on the market by different menace actors.
Credential stuffing can also be totally different from brute-force assaults, which revolve round cracking passwords, login credentials, and encryption keys utilizing a trial and error technique.
Atlantis AIO, per Irregular Safety, affords menace actors the power to launch credential stuffing assaults at scale through pre-configured modules for concentrating on a spread of platforms and cloud-based providers, thereby facilitating fraud, knowledge theft, and account takeovers.
“Atlantis AIO Multi-Checker is a cybercriminal instrument designed to automate credential stuffing assaults,” it stated. “Able to testing stolen credentials at scale, it might probably shortly try tens of millions of username and password mixtures throughout greater than 140 platforms.”
The menace actors behind this system additionally declare that it is constructed on “a basis of confirmed success” and that they’ve hundreds of happy purchasers, whereas assuring prospects of the safety ensures baked into the platform in an effort to hold their buy personal.
“Each function, replace, and interplay is crafted with meticulous consideration to raise your expertise past expectations,” they state within the official commercial, including “we frequently pioneer options that drive unprecedented outcomes.”
Targets of Atlantis AIO embrace e mail suppliers like Hotmail, Yahoo, AOL, GMX, and Net.de, in addition to e-commerce, streaming providers, VPNs, monetary establishments, and meals supply providers.
One other notable facet of the instrument is its capacity to conduct brute-force assaults in opposition to the aforementioned e mail platforms and automate account restoration processes related to eBay and Yahoo.
“Credential stuffing instruments like Atlantis AIO present cybercriminals with a direct path to monetizing stolen credentials,” Irregular Safety stated.
“As soon as they achieve entry to accounts throughout varied platforms, attackers can exploit them in a number of methods — e.g., promoting login particulars on darkish net marketplaces, committing fraud, or utilizing compromised accounts to distribute spam and launch phishing campaigns.”
To mitigate the account takeover dangers posed by such assaults, it is advisable to enact strict password guidelines and implement phishing-resistant multi-factor authentication (MFA) mechanisms.
